Thepiratebay spreads malware/trojans and no one is warning people
-
This post is deleted! -
@DogTheBootyHunter said in Thepiratebay spreads malware/trojans and no one is warning people:
Technically you could if someone was taking advantage of an unknown vulnerability, but that's about as likely as you winning the lottery today
New "zero days" (the name given to bugs of this nature) are discovered quite frequently. Such a threat is not likely to affect many people, but it should not be dismissed completely.
-
This post is deleted! -
@DogTheBootyHunter said in Thepiratebay spreads malware/trojans and no one is warning people:
....... this guy thinks he can be infected merely by visiting a site.You can, actually there have been drive-by download attacks that run successfully on IE, Safari, Chrome and Firefox without requiring the user's interaction.
-
@Catweazle said in Thepiratebay spreads malware/trojans and no one is warning people:
@DogTheBootyHunter said in Thepiratebay spreads malware/trojans and no one is warning people:
....... this guy thinks he can be infected merely by visiting a site.You can, actually there have been drive-by download attacks that run successfully on IE, Safari, Chrome and Firefox without requiring the user's interaction.
You can, although the trojan in question (Trojan:Win32/Wacatac.D!ml) requires local code execution. So you get it either via email attachments or from downloaded executables, which most likely is the case with TPB and other warez distributing sites.
IMHO browsers (or rather the safe browsing thingames) should warn about javascript initiated attacks (in other words: just visit a site and get infected) but not sites that have downloadable files that can include malware.
I compare it to sites that contain instructions on how to build a bomb. Everyone understands that following those instructions can result in a lost limb or two. Or lives. Same with cracks and warez. You know what you are doing. Danger comes with the territory.
-
@samuvuo , the danger is the excessive confidence and lack of common sense of the users, in a dangerous territory. The ability of malicious people to invent is infinite to achieve access or damage.
-
@Catweazle You are so right, as usual
But then again, what are the odds that my 77 year old mother would end up downloading something from TPB "by accident", when browsing the web, and would need a warning from her browser?
-
@Pesala said in Thepiratebay spreads malware/trojans and no one is warning people:
@Ree81 Vivaldi already warns me not to visit the site.
This site canโt provide a secure connection www.thepรฌratebay.com sent an invalid response. Try running Windows Network Diagnostics. ERR_SSL_PROTOCOL_ERROR
TPB is not .com, it's .org.
https://en.wikipedia.org/wiki/The_Pirate_BaySee also: Countries blocking access to The Pirate Bay
https://en.wikipedia.org/wiki/Countries_blocking_access_to_The_Pirate_Bay -
@samuvuo I still get the same error warning:
This site canโt provide a secure connectionthepiratebay.org sent an invalid response. Try running Windows Network Diagnostics. ERR_SSL_PROTOCOL_ERROR
Perhaps Malwarebytes is sending the message?
-
@samuvuo , the list of adblockers and antiphising, modern browser sandbox system and this of Windows 10, along with the updated AV, usually avoids the worst and largely avoids risks, but a rest of the risk always remains, since up to 800,000 new malware and exploits appear DIARY on the network, many of them created by groups of certain governments and companies , in order to spy and destry, both commercial and political, and the user is in the middle of this war as 'collateral damage' at times.
It is therefore essential to have as up-to-date a system as possible, to seek good protection and not to trust the own shadow in the network. -
@Catweazle I do not disagree with you about the amount of risks, I'm sorry if my comments have come out that way. I do have problems expressing myself clearly sometimes.
OP said (emphasis mine):
@Ree81 said in Thepiratebay spreads malware/trojans and no one is warning people:
So obviously Vivaldi (and other browsers) should warn against this specifically when people visit the site.
"Warning, some malicious type people are spreading viruses and malware in torrents on this site, and are faking the seeder numbers in order to make the torrent seem legit."
I think it's the job of content blocking ("ad blocking") + filter lists, safe browsing systems with their up-to-date URL + host lists and/or AV to do the warning, not the browser. That's all I've tried to say.
A browser is a framework, if you like, and with the ability to use sandboxing and safe browsing as well as external content blocking lists Vivaldi has taken care of its part, IMHO. Keeping ever changing blocklists up-to-date is not the job of a browser vendor.
-
@samuvuo , naturally a browser or an OS cannot combat malware, for this third-party applications are necessary. But what they can do is fix eventual security holes that are discovered over time and that can be exploited by malware.
This is why it is important to take security updates seriously. -
@JohnConnorBear , this is obvious, I said before that the first security filter is the user.
They do not serve even the best privacy tools, if the user does their searches with Google and posts private photos on Facebook, nor does it do much good for the best AV, if the user downloads anything from any site.
The question here was the possibility of being infected just by entering a page and unfortunately it is possible and not even so rare, and that's why it's important to have good protections and an up to date system. -
This post is deleted! -
This post is deleted! -
This post is deleted! -
@JohnConnorBear , it is always a risk of downloading files or applications not only from the network. As a network novice more than 20 years ago, a virus crushed my system in a matter of seconds, the cause was a CD program that came from a computer magazine.
This since then was the only case where I had problems with a virus, some highjacker by a separate Chrome Store extension (one of these that modify the new tab, but put on a search engine of these that can not be deleted or changed, annoying, but easy to fix).
You have to always be very careful and always check the download, before installing it.
The AVs had their meaning in previous Windows and the Panda I used then has certainly gotten me out of some trouble. What happens now is that AVs with the W10 have lost a market they used to have and steed them into a hurry that some have taken as a reason to alleviate it by selling user data, which they didn't need to do before. -
@Ree81 You should get an ad blocker like uBlock Origin and make sure you read up on the GitHub wiki so you know about filters.
lol everyone is discussing piracy. Vivaldi can't do anything about pirate sites. If you see free photoshop, you've gotta be extra careful. and um. there are other sites that are better for software And make sure you're on the right websites or an official mirror.
-
@JohnConnorBear , or worst, on her job manager's PC.
This is why I can't get tired of repeating that privacy is synonymous with network security and privacy starts with user behavior.
That illegal downloads are always a risk is obvious and there equally the common sense of the user is the best protection. -
@JohnConnorBear , I have recommended to my acquaintances that they have young or teenage children, to look at these things and install them for example Swisscows as a search engine, which is safe and does not support 'no family friendly' results in searches. But of course, this must be the parents who keep an eye on them, often less adept at this internet thing than the children themselves. It's really a problem and some people have nothing left to learn from the hard ones, as I had to learn as a net novice.